Description
Cross-site scripting (XSS) vulnerability in phpMyFAQ through 2.9.8 allows remote attackers to inject arbitrary web script or HTML via the "Title of your FAQ" field in the Configuration Module.
Remediation
References
Related Vulnerabilities
Apache Traffic Server Uncontrolled Resource Consumption Vulnerability (CVE-2018-8005)
ClipBucket Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-7665)
PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-1914)
WordPress Plugin WP Content Copy Protection & No Right Click Security Bypass (3.1.4)